Skip to main content
Kofax

How to check the expiry date of the Device Control Engine (DCE) certificate

3031152

Problem: 

Due to the requirement for Device Control Engine (DCE) certificate pinning, certificate expiry will cause the DCE to create new certificates. Following this, the DCE will reject communication from the devices. It is important to know how to check the expiry date of the DCE certificate, to allow the creation of new certificates without loss of service.

Solution: 

There are three ways to check this:

Method 1: Web Browser

Open a Web Browser to the DCE service on port 2939, the URL is below:

  1. https://<DCE FQDN or IP Address>:2939
  2. Replacing <DCE FQDN or IP Address> with either its IP address or Fully Qualified Domain name. (localhost can be used if testing from the DCE server
  3. Navigate past the certificate error
  4. Click on the certificate in the address bar and view the certificate 

Certweb.jpg

The expiry date will be shown

Cert.jpg

Method 2: Use Equitrac Certificate Manager
  1. Open Command prompt as the Service account running the DCE service
  2. Equitrac Office: Navigate to C:\Program Files\Equitrac\Office\Tools
  3. Equitrac Express: Navigate to C:\Program Files\Equitrac\Express\Tools
  4. Open the EQSSLCertificateManager.exe application
  5. Double click the certificate to display the expiry date

ssl manager.jpg

Method 3: PowerShell
  1. Open a Windows PowerShell session as Administrator on the DCE server.
  2. Enter the command  Get-ChildItem Cert:\LocalMachine\Equitrac-Shared\ | select PSparentpath , Subject, Notafter | fl
  3. This will display the certificate expiry date in the PowerShell window

Example:
PSParentPath : Microsoft.PowerShell.Security\Certificate::LocalMachine\Equitrac-Shared
Subject      : CN=DCEquitrac
NotAfter     : 29/04/2023 14:07:35

Recommendation: 

If the certificate is about to expire, it is recommended to follow the KB Ricoh PCC5.1 Unified Client : How to renew the Device Control Engine (DCE) certificate without having to re-configure the device - Kofax to create new certificates with longer validity. 

Applies to:  

Product Version
Ricoh PCC5.1
Kofax  Unified Client for Ricoh 

 

 

  • Was this article helpful?